Privacy policy
For wealthAPI GmbH (hereinafter referred to as wealthAPI).
1. Data Protection
a) Data Protection Officer / Responsible for IT Security: To address data protection requests, customers can contact the appointed Data Protection Officer, Mr. Wolfram Stacklies, at +49 30 – 71 53 30 10 or datenschutz@wealthapi.eu.
b) It is important to us that you feel safe and comfortable when visiting our online offers. On this page we inform you about how we handle your data. wealthAPI treats your data with absolute confidentiality. No data is passed on to third parties for marketing purposes.
c) Please note that you can also access third-party websites from our site via hyperlinks to other providers, cooperation partners and through advertising, which in turn are subject to their own data protection.
d) Users of wealthAPI have the option of sharing the composition of their managed portfolios (in the form of a watchlist; without specifying amounts) or watchlists with other users of this site. Each user can decide for themselves which data they wish to make available to whom. This authorization can be revoked by the user at any time. By default, this data is not visible.
e) wealthAPI will always respect user decisions and will at no time publish investment data without the user’s explicit consent.
2. Collection and Use of Data
a) Information collected by us
We collect information to provide better services to all our users. According to the Federal Data Protection Act, personal data is information that can be used to draw conclusions about your person and your personal or factual circumstances. When you visit wealthAPI websites, data such as your IP address or the date of access are temporarily stored. Additional personal data such as your name, your address or your e-mail address are only collected if you provide them voluntarily, for example during registration.
b) Use of the data
Your data will only be used by us to the extent that it is necessary for the implementation of our website and the user relationship or is otherwise permitted by law. wealthAPI uses the data collected as part of its services to provide, maintain, protect and improve its services, to develop new services and to protect its users. wealthAPI also uses this data to offer you customized content. For this purpose, wealthAPI aggregates data and creates anonymized evaluations, e.g. to enable peer group comparisons. wealthAPI will only process and use your personal data for marketing measures, such as sending e-mails with general information or of an advertising nature (e.g. newsletters), if you have previously given your express separate consent to this. You have the option to unsubscribe from such information at any time. We will record your consent to data collection and storage. If necessary, we will inform you when and how you gave your consent. If you do not give your consent, we ask for your understanding that you will not be able to use our services. In addition, wealthAPI will only collect, process or use data if there are factual indications that this is necessary in individual cases in order to uncover fraudulent or other illegal or non-contractual behavior on wealthAPI’s websites. For this purpose, wealthAPI may also collect, process and use usage data, including with the help of cookies.
c) Data disclosure
wealthAPI will only pass on your name and contact details, such as your e-mail address, to other users registered with wealthAPI or wealthAPI cooperation partners if you have requested this yourself as part of an invitation, a request for a quote or an order. As a registered user, the user name you have chosen is generally accessible to all visitors to all wealthAPI websites. wealthAPI uses specialized third-party providers to provide its services. This includes e-mailing and bank interfaces, for example. wealthAPI passes on user data to these service providers for the sole purpose of providing the service. Disclosure for marketing purposes is excluded. Furthermore, wealthAPI will only transfer your personal data to third parties within the framework of the statutory provisions, in particular to law enforcement and supervisory authorities for the prevention of threats to state and public security and for the prosecution of criminal offenses or if this is necessary to protect the legitimate interests of a third party.
3. External Service Providers
wealthAPI uses external service providers to fulfill its tasks. Contractual regulations are recorded in writing with the service providers, particularly as this affects key data processing processes, the IT infrastructure and special customer-specific applications. wealthAPI obliges all external service providers to maintain data secrecy and confidentiality. The service provider has an auxiliary function, providing support to the client in one or more phases of data collection, processing or use in accordance with instructions. It does not take on a task in its entirety, but merely its technical execution. wealthAPI currently uses the following service providers in connection with data processing:
Google Ireland Limited
Gordon House, Barrow Street, Dublin 4, Ireland (Hosting in the Google Datacenter Frankfurt. Building and infrastructure are subject to 24/7 monitoring, security areas are additionally video-monitored. Multi-factor authentication ensures highly reliable access control).
Mailchimp
The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA (Mailing Portal wealthAPI Newsletter)
wildbit LLC
225 Chestnut St., Philadelphia, PA, 19106 (Mailing provider for transactional email communications)
finAPI GmbH
Adams-Lehmann-Straße 44, 80797 Munich, Germany (bank interfaces and temporary storage of account information data)
Netfonds AG
Heidenkampsweg 73, 20097 Hamburg, Germany (management of securities accounts managed via wealthAPI-Cashback; in this context, storage of customer and transaction data on Netfonds AG servers)
4. Cookies
wealthAPI stores information on your system in the form of cookies. These are used to identify your current or past user session.
In addition, we use third-party web analysis tools (e.g. Google Analytics, Hotjar and comparable web analysis services) for the needs-based design of web offers. The web analysis services also use cookies for this purpose.
This data is analyzed and processed both in EU member states and in non-EU member states (e.g. Google Analytics in the USA).
The web analysis services will use the transmitted information to evaluate your use of the website, to compile reports on website activity for us and to provide other services related to website activity and internet usage. The web analysis services may also transfer this information to third parties if this is required by law or if third parties process this data on behalf of the web analysis services. Under no circumstances will the web analysis services link your IP address with other data from the web analysis services. We only receive evaluations without personal reference. IP addresses are only stored anonymously.
Further information about Google Inc. and Google Analytics can be found at: (https://www.google.com). You can find Google’s privacy policy at: https://www.google.com/intl/de/policies/privacy/. For information on how to prevent tracking by Google Analytics, please click on the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
Integration and use of Facebook and Twitter plugins
We use plugins from the social network facebook.com in certain areas of our websites. Facebook.com is a service provided by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. If you visit one of our websites that has integrated a Facebook plugin, a connection to the Facebook servers will be established. The plugin will only be displayed on our respective website once your browser has been notified of this.
We hereby expressly point out that the recognition of your browser automatically transmits information to the Facebook servers about which of our Internet pages you have visited.
If you are also logged in as a member of Facebook, Facebook assigns this information to your personal Facebook user account. The same also applies to the use of plug-in functions, e.g. by clicking the “Like” button. This information is also assigned to your Facebook user account. You can prevent this by logging out of Facebook before using our websites.
You can find comprehensive information on the collection, storage and use of your data by Facebook, how to exercise your rights in this regard and how to protect your privacy in the Facebook privacy policy https://de-de.facebook.com/policy.php and the privacy guide https://de-de.facebook.com/privacy/explanation.php.
On this website, we use functions of the Twitter service, a service provided by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA (“Twitter”). By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. Data is also transmitted to Twitter in the process.
We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Twitter. Further information on this can be found in Twitter’s privacy policy: twitter.com/privacy.
You can change your data protection settings on Twitter in the account settings at twitter.com/account/settings.
5. Hotjar
This website uses Hotjar. The provider is Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (website: https://www.hotjar.com). We have concluded an order processing contract with Hotjar in order to implement the strict European data protection regulations. Hotjar is a tool for analyzing your user behavior on our website. Hotjar allows us to record your mouse and scroll movements and clicks, among other things. Hotjar can also determine how long you remain with the mouse pointer in a certain place. Hotjar uses this information to create so-called heat maps, which can be used to determine which areas of the website visitors prefer to look at. We can also determine how long you stayed on a page and when you left it. We can also determine at which point you abandoned your entries in a contact form (so-called conversion funnels). In addition, Hotjar can be used to obtain direct feedback from website visitors. This function serves to improve the website operator’s web offerings. The use of Hotjar and the storage of Hotjar cookies is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising.
Deactivating Hotjar
If you wish to deactivate data collection by Hotjar, click on the following link and follow the instructions there: https://www.hotjar.com/opt-out. Please note that Hotjar must be deactivated separately for each browser or end device. For more information about Hotjar and the data collected, please refer to Hotjar’s privacy policy at the following link: https://www.hotjar.com/privacy.
Interest-based advertising
Interest-based advertising may be used on our website. For this purpose, wealthAPI uses user profiles from the Google Content advertising network or its own anonymized user data.
Paid services
We offer you fee-based services or the fee-based ordering of products or services, such as wealthAPI cashback. Depending on the respective service, you may be required to provide additional data (e.g. a delivery address or payment details). In this case, wealthAPI logs further usage data to provide the service and to protect your interests and the interests of legitimate third parties.
Deletion and modification of your data
You can request information about your data stored by us as well as correction, blocking and deletion at any time. All options for contacting wealthAPI can be found in the legal notice.
Changes to this privacy policy
wealthAPI will inform you in an appropriate place if this privacy policy is amended.
6. Safety
wealthAPI protects your data from unauthorized access by third parties within the scope of the respective technical possibilities. The validity of this privacy policy is limited to our websites. This data protection declaration does not extend to links to other companies. We use extensive technical and organizational security measures to protect your personal data from intentional manipulation, loss or access by unauthorized third parties. These are constantly being improved in accordance with the applicable data protection laws and technological developments. Nevertheless, we would like to point out that despite our security measures, information that you voluntarily release via the network can be used by others. We cannot accept any liability for data transmission errors or unauthorized access to your data by third parties.
7. Consent and Revocation
By registering with wealthAPI, you agree to this privacy policy. You can revoke your declaration of consent at any time with effect for the future.
8. Contact & Right to Information
If you have any further questions or suggestions on the subject of data protection, please contact us. You can also obtain information about the data we have stored about you at any time. We have summarized the information according to § 4g BDSG in our public procedure directory. If required, please write to: wealthAPI GmbH, Fanny-Zobel-Str. 9, 12435 Berlin or info@wealthapi.eu
Status: 05.01.2024